How can I test my network’s persistence during an attack?

yucchunyucchun
in Help

A few months ago, I received a massive hit on my home servers rendering my network useless for hours, constantly restarting my router to change IPs yet the attack would return minutes after. Later on I found out it was because of DynDNS, stupid thing I overlooked that caused a huge downtime for me and my friends that use my servers.

Since then, I have invested more in my networking, I have paid extra for 2 IPs and I have separate routers running for my server and my home itself. They come through one glass fiber cable to a ISP-issued network authenticating device, my house runs under NAT and the server runs directly to the public IP, I have closed sensitive ports’ access to the general Internet, I also disabled pings recently, to look stealthy.

I would like to test my network structure based off this to see how it would perform under stress with this new environment, the conditions and the investments I’ve made, but I have no clue over what I could do in order to achieve this, I have DoS’d myself (without the distributed part due to a lack of resources) from the home router to the server one but I get automatically mitigated by my ISP or the router, no clue. I believe it’s the router though, TP-Link features something?

Are there any tools on-line that can do this for cheap/free at a controlled rate?

Comments

  • nikhm2nnikhm2n

    I think this might fit your needs. I have used the free version to stress test websites.
    Loader.io
    Alternatively,
    K6.io

    Thanked by (2)ehab yucchun
  • yucchunyucchun

    The server's just handling the load, does that mean I'm good?
    I have a 20Gbps line hooked up to it

  • yucchunyucchun

    I’m gonna ask for permission to run my work’s 100Gbps line against my home

  • MikeAMikeA Hosting ProviderOG

    @yucchun said:
    I’m gonna ask for permission to run my work’s 100Gbps line against my home

    Hope you mean you're gonna ask your residential ISP lmao.

    Thanked by (1)skhron

    ExtraVM

  • skhronskhron Hosting Provider

    @yucchun said: I have invested more in my networking, I have paid extra for 2 IPs and I have separate routers running for my server and my home itself. They come through one glass fiber cable to a ISP-issued network authenticating device, my house runs under NAT and the server runs directly to the public IP, I have closed sensitive ports’ access to the general Internet, I also disabled pings recently, to look stealthy.

    Well if I understood you correct, the moment when DDoS attack or whatever satures your physical uplink, you won't gain any redundancy from having two separate routers on your side.

    Thanked by (1)yucchun

    🇵🇱 KVM VPS | LG

  • yucchunyucchun
    edited September 26

    @MikeA said:

    @yucchun said:
    I’m gonna ask for permission to run my work’s 100Gbps line against my home

    Hope you mean you're gonna ask your residential ISP lmao.

    Nope, work! We have a 100 Gbps line

    @skhron said:

    @yucchun said: I have invested more in my networking, I have paid extra for 2 IPs and I have separate routers running for my server and my home itself. They come through one glass fiber cable to a ISP-issued network authenticating device, my house runs under NAT and the server runs directly to the public IP, I have closed sensitive ports’ access to the general Internet, I also disabled pings recently, to look stealthy.

    Well if I understood you correct, the moment when DDoS attack or whatever satures your physical uplink, you won't gain any redundancy from having two separate routers on your side.

    I feel like the main issue is that this server shouldn’t be getting that much bandwidth in the first place, right? I mean 20Gbps for 12 Minecraft servers or so sounds a little over the edge

  • skorousskorous OG

    @yucchun said: Nope, work! We have a 100 Gbps line

    I think his point was that you're about to destroy a shared residential line which is the type of thing you might want to ask before doing....

    Thanked by (1)yucchun
  • yucchunyucchun

    @skorous said:

    @yucchun said: Nope, work! We have a 100 Gbps line

    I think his point was that you're about to destroy a shared residential line which is the type of thing you might want to ask before doing....

    I pay for a dedicated allocation but I'll definitely give them a little call before LOL, thanks for the heads up! I'll keep you guys updated

    Thanked by (1)skorous
  • AuroraZeroAuroraZero Moderator

    @yucchun said:

    @skorous said:

    @yucchun said: Nope, work! We have a 100 Gbps line

    I think his point was that you're about to destroy a shared residential line which is the type of thing you might want to ask before doing....

    I pay for a dedicated allocation but I'll definitely give them a little call before LOL, thanks for the heads up! I'll keep you guys updated

    That would be a good idea since they will treat it as an attack regardless and if it is traced back to you expect at the very least no internet feom them again.

    Thanked by (1)yucchun

    URL Shortener | YetiNode | CryptidSecurity | LaunchVPS | ExtraVM | Host-C | Are you in the Node?

Sign In or Register to comment.